Common use of Privacy of Protected Health Information Clause in Contracts

Privacy of Protected Health Information. Business Associate shall use appropriate safeguards to prevent use or disclosure of Protected Health Information and Nonpublic Personal Financial Information not provided for by Section E. Business Associate shall report in writing to Company’s Corporate Compliance Office any use or disclosure of Protected Health Information or Nonpublic Personal Financial Information not provided for by Section E as soon as practicable but no later than five (5) days after Business Associate becomes aware of such unauthorized use or disclosure. Unless otherwise directed by Company’s Corporate Compliance Office, Business Associate shall include in the report the following: (A) the date of the unauthorized use or disclosure; (B) the name and (if known) address of the person or entity which received Protected Health Information pursuant to the unauthorized disclosure; (C) a brief description of the Protected Health Information that was the subject of the unauthorized use or disclosure; (D) a brief statement of the nature of the unauthorized use or disclosure; (E) the name and date of birth of the individual(s) whose Protected Health Information was the subject of the unauthorized use or disclosure, and each such individual’s contract number; (F) the corrective action that Business Associate has taken or will take to prevent further unauthorized uses or disclosures; and (G) the steps Business Associate has taken or will take to mitigate any known harmful effects of the unauthorized use or disclosure.

Privacy of Protected Health Information. Business Associate shall use appropriate safeguards to prevent use or disclosure of Protected Health Information and Nonpublic Personal Financial Information not provided for by this Section E. Business Associate shall report in writing to Company’s Corporate Compliance Office any use or disclosure of Protected Health Information or Nonpublic Personal Financial Information not provided for by this Section E as soon as practicable but no later than five (5) days after Business Associate becomes aware of such unauthorized use or disclosure. Unless otherwise directed by Company’s Corporate Compliance Office, Business Associate shall include in the report the following: (A) the date of the unauthorized use or disclosure; (B) the name and (if known) address of the person or entity which received Protected Health Information pursuant to the unauthorized disclosure; (C) a brief description of the Protected Health Information that was the subject of the unauthorized use or disclosure; (D) a brief statement of the nature of the unauthorized use or disclosure; (E) the name and date of birth of the individual(s) whose Protected Health Information was the subject of the unauthorized use or disclosure, and each such individual’s contract number; (F) the corrective action that Business Associate has taken or will take to prevent further unauthorized uses or disclosures; and (G) the steps Business Associate has taken or will take to mitigate any known harmful effects of the unauthorized use or disclosure.

Privacy of Protected Health Information. Business Associate shall use appropriate safeguards to prevent use or disclosure of Protected Health Information and Nonpublic Personal Financial Information not provided for by Section E. Business Associate shall report in writing to Company’s Corporate Compliance Office any use or disclosure of Protected Health Information or Nonpublic Personal Financial Information not provided for by Section E as soon as practicable but no later than five (5) days after Business Associate becomes aware of such unauthorized use or disclosure. Unless otherwise directed by Company’s Corporate Compliance Office, Business Associate shall include in the report the following: (A) the date of the unauthorized use or disclosure; (B) the name and (if known) address of the person or entity which received Protected Health Information pursuant to the unauthorized disclosure; (C) a brief description of the Protected Health Information that was the subject of the unauthorized use or disclosure; (D) a brief statement of the nature of the unauthorized use or disclosure; (E) the name and date of birth of the individual(s) whose Protected Health Information was the subject of the unauthorized use or disclosure, and each such individual’s contract number; (F) the corrective action that Business Associate has taken or will take to prevent further unauthorized uses use or disclosures; and (G) the steps Business Associate has taken or will take to mitigate any known harmful effects of the unauthorized use or disclosure.